1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
|
{
"global": [
{
"field" : "SECURE_ANALYZERS_PREFIX",
"label" : "Image prefix",
"type": "string",
"default_value": "",
"value": "",
"size": "MEDIUM",
"description": "Analyzer image's registry prefix (or Name of the registry providing the analyzers' image)"
},
{
"field" : "SAST_EXCLUDED_PATHS",
"label" : "Excluded Paths",
"type": "string",
"default_value": "",
"value": "",
"size": "LARGE",
"description": "Comma-separated list of paths to be excluded from analyzer output. Patterns can be globs, file paths, or folder paths."
},
{
"field" : "SAST_ANALYZER_IMAGE_TAG",
"label" : "Image tag",
"type": "string",
"default_value": "",
"value": "",
"size": "SMALL",
"description": "Analyzer image's tag"
}
],
"pipeline": [
{
"field" : "stage",
"label" : "Stage",
"type": "string",
"default_value": "",
"value": "",
"size": "MEDIUM",
"description": "Pipeline stage in which the scan jobs run"
},
{
"field" : "SEARCH_MAX_DEPTH",
"label" : "Search maximum depth",
"type": "string",
"default_value": "",
"value": "",
"size": "SMALL",
"description": "Maximum depth of language and framework detection"
}
],
"analyzers": [
{
"name": "brakeman",
"label": "Brakeman",
"enabled" : true
},
{
"name": "bandit",
"label": "Bandit",
"enabled" : true
},
{
"name": "eslint",
"label": "ESLint",
"enabled" : true
},
{
"name": "flawfinder",
"label": "Flawfinder",
"enabled" : true
},
{
"name": "kubesec",
"label": "kubesec",
"enabled" : true
},
{
"name": "nodejsscan",
"label": "Node.js Scan",
"enabled" : true
},
{
"name": "gosec",
"label": "Golang Security Checker",
"enabled" : true
},
{
"name": "phpcs-security-audit",
"label": "PHP Security Audit",
"enabled" : true
},
{
"name": "pmd-apex",
"label": "PMD APEX",
"enabled" : true
},
{
"name": "security-code-scan",
"label": "Security Code Scan",
"enabled" : true
},
{
"name": "sobelow",
"label": "Sobelow",
"enabled" : true
},
{
"name": "spotbugs",
"label": "Spotbugs",
"enabled" : true
},
{
"name": "secrets",
"label": "Secrets",
"enabled" : true
}
]
}
|
